Wisepay, which runs remote payments for things like lunches and exams at about 300 schools, said a hack of its website let an attacker steal payment details between 2 and 5 October. Grazier said at that point Wisepay took its website down to protect parents until they could resolve the problem. This let hackers steal card details as they were entered. In a letter to schools, Wisepay recommended parents who thought they might have been affected pause or cancel their cards and change online banking passwords. "Those entering their credit card information into a compromised payment page would really have no idea that they were handing their card details over to cybercriminals because these malicious payment pages are designed to appear perfectly legitimate.

Source: Daily Mirror October 09, 2020 11:06 UTC